SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for xorg-x11-server-Xvfb-21.1.12-3.1.x86_64.rpm :

* Wed Jun 12 2024 Daniel Garcia - Fix python3 shebang in source python script to use specific python interpreter and remove dependency on /usr/bin/python3 (bsc#1212476)
* Wed Apr 10 2024 Stefan Dirsch - U_render-Avoid-possible-double-free-in-ProcRenderAddGl.patch
* fixes regression for security fix for CVE-2024-31083 (bsc#1222312, boo#1222442, gitlab xserver issue #1659)
* Thu Apr 04 2024 Stefan Dirsch - Security update 21.1.12 This release addresses the following 4 security issues:
* CVE-2024-31080
* CVE-2024-31081
* CVE-2024-31082
* CVE-2024-31083 Additionally it provides a way to disable byte-swapped clients either by command line flag or config option. This allows to turn off byte swapping code that has been a source of security problems lately.
* Mon Feb 26 2024 Dominique Leuenberger - Use %patch -P N instead of deprecated %patchN.
* Tue Feb 20 2024 Stefan Dirsch - fix permissions of files in xorg-x11-server-source for tigervnc build later (needed since latest autoconf)
* Thu Feb 15 2024 Joan Torres - Provide again xorg-x11-server-source
* xwayland sources are not meant for a generic server.
* https://github.com/TigerVNC/tigervnc/issues/1728
* Thu Feb 15 2024 Joan Torres - Stop providing xorg-x11-server-source from xorg-x11-server
* Now the sources are provided by xwayland because it is more updated.
* Fixes bsc#1219892.
* Mon Feb 12 2024 Stefan Dirsch - Release 21.1.11 also covers fixes for security issue CVE-2022-46340 and bug numbers bsc#1205874, bsc#1217765
* Sun Feb 11 2024 Stefan Dirsch - Release 21.1.11 covers fixes for the following bug numbers, which are not mentioned in this changelog before: bsc#1218845, bsc#1218846, bsc#1216261, bsc#1216133, bsc#1216135
* Sun Feb 11 2024 Stefan Dirsch - Release 21.1.11 supersedes the following patches still used with xorg-x11-server 21.1.4 on sle15-sp5/Leap 15.5 and not mentioned in this changelog as superseded before:
* U_Xext-fix-invalid-event-type-mask-in-XTestSwapFakeInp.patch
* U_bsc1216133-mi-reset-the-PointerWindows-reference-on-screen-swit.patch
* U_bsc1216135-Xi-randr-fix-handling-of-PropModeAppend-Prepend.patch
* U_bsc1216261-0001-mi-fix-CloseScreen-initialization-order.patch
* U_bsc1216261-0002-fb-properly-wrap-unwrap-CloseScreen.patch
* U_bsc1216261-0003-dix-always-initialize-pScreen-CloseScreen.patch
* bsc1218582-0001-dix-allocate-enough-space-for-logical-button-maps.patch
* bsc1218583-0001-dix-Allocate-sufficient-xEvents-for-our-DeviceStateN.patch
* bsc1218583-0002-dix-fix-DeviceStateNotify-event-calculation.patch
* bsc1218583-0003-Xi-when-creating-a-new-ButtonClass-set-the-number-of.patch
* bsc1218584-0001-Xi-flush-hierarchy-events-after-adding-removing-mast.patch
* bsc1218585-0001-Xi-do-not-keep-linked-list-pointer-during-recursion.patch
* bsc1218585-0002-dix-when-disabling-a-master-float-disabled-slaved-de.patch
* U_bsc1218845-glx-Call-XACE-hooks-on-the-GLX-buffer.patch
* U_bsc1218846-ephyr-xwayland-Use-the-proper-private-key-for-cursor.patch
* Fri Feb 09 2024 Stefan Dirsch - xserver sources of this release fixes segfault in Xvnc (bsc#1219311)
* Mon Jan 29 2024 Stefan Dirsch - no longer (build-)require obsolete Xprint/XprintUtil
* Tue Jan 16 2024 Stefan Dirsch - Update to version 21.1.11
* This release contains fixes for the issues reported in today\'s security advisory: https://lists.x.org/archives/xorg/2024-January/061525.html
* CVE-2023-6816 (bsc#1218582)
* CVE-2024-0229 (bsc#1218583)
* CVE-2024-21885 (bsc#1218584)
* CVE-2024-21886 (bsc#1218585)
* CVE-2024-0408
* CVE-2024-0409- supersedes the following patches
* U_xephyr-Don-t-check-for-SeatId-anymore.patch
* U_bsc1217765-Xi-allocate-enough-XkbActions-for-our-buttons.patch
* U_bsc1217766-randr-avoid-integer-truncation-in-length-check-of-Pr.patch
* Sat Jan 06 2024 Stefan Dirsch - u_miCloseScreen_check_for_null_pScreen_dev_private.patch
* miCloseScreen check for null pScreen dev private (bsc#1218176); another regression introduced by U_bsc1216261-0002-fb-properly-wrap-unwrap-CloseScreen.patch
* Sat Jan 06 2024 Stefan Dirsch - n_xserver-optimus-autoconfig-hack.patch u_randr-Do-not-crash-if-slave-screen-does-not-have-pro.patch u_xfree86-activate-GPU-screens-on-autobind.patch
* check dixPrivateKeyRegistered(rrPrivKey) before calling rrGetScrPriv() to avoid xserver crash when Xinerama is enabled (boo#1218240) - ------------------------------------------------------------------
* Mon Dec 04 2023 Stefan Dirsch - U_bsc1217765-Xi-allocate-enough-XkbActions-for-our-buttons.patch
* Out-of-bounds memory write in XKB button actions (CVE-2023-6377, ZDI-CAN-22412, ZDI-CAN-22413, bsc#1217765)- U_bsc1217766-randr-avoid-integer-truncation-in-length-check-of-Pr.patch
* Out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty (CVE-2023-6478, ZDI-CAN-22561, bsc#1217766)
* Wed Oct 25 2023 Stefan Dirsch - Update to version 21.1.9
* This release contains fixes for CVE-2023-5367, CVE-2023-5380 and CVE-2023-5574 as reported in today\'s security advisory: https://lists.x.org/archives/xorg-announce/2023-October/003430.html- adjusted u_Use-better-fallbacks-to-generate-cookies-if-arc4rand.patch
* Sat Apr 01 2023 Bjørn Lie - Update to version 21.1.8 (CVE-2023-1393):
* This release contains the fix for CVE-2023-1393
* composite: Fix use-after-free of the COW
* xkbUtils: use existing symbol names instead of deleted deprecated ones- Drop U_xserver-composite-Fix-use-after-free-of-the-COW.patch: Fixed upstream- Switch back to tarball release, drop source service, add keyring and sig files.
* Wed Mar 22 2023 Stefan Dirsch - U_xserver-composite-Fix-use-after-free-of-the-COW.patch
* overlay window use-after-free (CVE-2023-1393, ZDI-CAN-19866, bsc#1209543)
* Tue Feb 07 2023 Stefan Dirsch - Update to version xorg-server-21.1.7:
* This release contains the fix for CVE-2023-0494 in today\'s security advisory: https://lists.x.org/archives/xorg-announce/2023-February/003320.html It also fixes a second possible OOB access during EnqueueEvent and a crasher caused by ResourceClientBits not correctly honouring the MaxClients value in the configuration file.- supersedes U_Xi-fix-potential-use-after-free-in-DeepCopyPointerCl.patch, U_xorg-server-oob-read-enqueue-event.patch
* Wed Feb 01 2023 Stefan Dirsch - U_Xi-fix-potential-use-after-free-in-DeepCopyPointerCl.patch
* DeepCopyPointerClasses use-after-free (CVE-2023-0494, ZDI-CAN-19596, bsc#1207783)
* Wed Jan 25 2023 Stefan Dirsch - rename u_xorg-server-oob-read-enqueue-event.patch to U_xorg-server-oob-read-enqueue-event.patch since it\'s already upstream
* Wed Jan 25 2023 Michael Gorse - Add u_xorg-server-oob-read-enqueue-event.patch: fix an out-of-bounds read in EnqueueEvent.
* Mon Dec 19 2022 dmuellerAATTsuse.com- Update to version xorg-server-21.1.6:
* xserver 21.1.6
* Xext: fix invalid event type mask in XTestSwapFakeInput
* xkb: fix some possible memleaks in XkbGetKbdByName
* xkb: proof GetCountedString against request length attacks
* xquartz: Fix some formatting
* XQuartz: stub: Call LSOpenApplication instead of fork()/exec()- drop the following upstream patches: U_xkb-proof-GetCountedString-against-request-length-at.patch U_xkb-fix-some-possible-memleaks-in-XkbGetKbdByName.patch
* Sat Dec 17 2022 Dirk Müller - Update to version xorg-server-21.1.5:
* xkb: reset the radio_groups pointer to NULL after freeing it
* Xi: avoid integer truncation in length check of ProcXIChangeProperty
* Xi: return an error from XI property changes if verification failed
* Xext: free the screen saver resource when replacing it
* Xext: free the XvRTVideoNotify when turning off from the same client
* Xi: disallow passive grabs with a detail > 255
* Xtest: disallow GenericEvents in XTestSwapFakeInput
* meson: Don\'t build COMPOSITE for XQuartz
* xquartz: Move default applications list outside of the main executable
* xquartz: Remove unused macro (X11LIBDIR)- drop the following upstream patches: U_0007-xkb-reset-the-radio_groups-pointer-to-NULL-after-fre.patch U_0002-Xi-return-an-error-from-XI-property-changes-if-verif.patch U_0003-Xi-avoid-integer-truncation-in-length-check-of-ProcX.patch U_0004-Xi-disallow-passive-grabs-with-a-detail-255.patch U_0005-Xext-free-the-screen-saver-resource-when-replacing-i.patch U_0006-Xext-free-the-XvRTVideoNotify-when-turning-off-from-.patch U_0001-Xtest-disallow-GenericEvents-in-XTestSwapFakeInput.patch
* Tue Dec 06 2022 Stefan Dirsch - U_0007-xkb-reset-the-radio_groups-pointer-to-NULL-after-fre.patch
* XkbGetKbdByName use-after-free (ZDI-CAN-19530, CVE-2022-4283, bsc#1206017)
* Wed Nov 30 2022 Stefan Dirsch - U_0001-Xtest-disallow-GenericEvents-in-XTestSwapFakeInput.patch
* Server XTestSwapFakeInput stack overflow (ZDI-CAN 19265, CVE-2022-46340, bsc#1205874)- U_0002-Xi-return-an-error-from-XI-property-changes-if-verif.patch
* Xi: return an error from XI property changes if verification failed (no ZDI-CAN id, no CVE id, bsc#1205875)- U_0003-Xi-avoid-integer-truncation-in-length-check-of-ProcX.patch
* Server XIChangeProperty out-of-bounds access (ZDI-CAN 19405, CVE-2022-46344, bsc#1205876)- U_0004-Xi-disallow-passive-grabs-with-a-detail-255.patch
* Server XIPassiveUngrabDevice out-of-bounds access (ZDI-CAN 19381, CVE-2022-46341, bsc#1205877)- U_0005-Xext-free-the-screen-saver-resource-when-replacing-i.patch
* Server ScreenSaverSetAttributes use-after-free (ZDI-CAN 19404, CVE-2022-46343, bsc#1205878)- U_0006-Xext-free-the-XvRTVideoNotify-when-turning-off-from-.patch
* Server XvdiSelectVideoNotify use-after-free (ZDI-CAN 19400, CVE-2022-46342, bsc#1205879)
* Mon Nov 07 2022 Stefan Dirsch - Release 21.1 covers bugfixes and JIRA tickets for bsc#1176015,bsc#1182510,bsc#1182884,bsc#1184072,bsc#1184543,bsc#1184906,bsc#1186092,bsc#1188970,bsc#1194159,bsc#1196577,bsc#1197046,bsc#1197269,bsc#1200076,fdo#574,jsc#SLE-18653,jsc#SLE-8470
* Mon Nov 07 2022 Stefan Dirsch - Release 21.1 supersedes the following patches still used with xorg-x11-server 1.20.3 on sle15-sp4/Leap 15.4:
* U_0002-DRI2-Add-another-Coffeelake-PCI-ID.patch
* U_0002-Fix-crash-on-XkbSetMap.patch
* U_0003-Fix-crash-on-XkbSetMap.patch
* U_0003-dri2-Sync-i965_pci_ids.h-from-mesa.patch
* U_0004-dri2-Set-fallback-driver-names-for-Intel-and-AMD-chi.patch
* U_0005-dri2-Sync-i965_pci_ids.h-from-mesa-iris_pci_ids.h.patch
* U_build-glx-Lower-gl-version-to-work-with-libglvnd.patch
* U_glamor-Make-pixmap-exportable-from-gbm_bo_from_pixma.patch
* U_hw_do-not-include-sys-io-with-glibc.patch
* U_meson-Fix-another-reference-to-gl-9.2.0.patch
* U_modesetting-Fix-broken-manpage-in-autoconf-build.patch
* U_present-wnmd-Fix-use-after-free-on-CRTC-removal.patch
* U_present-wnmd-Relax-assertion-on-CRTC-on-abort_vblank.patch
* U_xfree86-Change-displays-array-to-pointers-array-to-f.patch
* U_xfree86-Fix-NULL-pointer-dereference-crash.patch
* U_xkbsetdeviceinfo.patch
* u_sync-pci-ids-with-Mesa-21.2.4.patch
* u_xf86-Accept-devices-with-the-simpledrm-driver.patch
* u_xichangehierarchy-CVE-2020-14346.patch
* u_xkb-CVE-2020-14345.patch
* u_xkb-CVE-2020-14360.patch
* Wed Nov 02 2022 Stefan Dirsch - removed N_Disable-HW-Cursor-for-cirrus-and-mgag200-kernel-modules.patch
* meanwhile cirrus and mgag200 Kernel drivers have been rewritten multiple times and no longer have (broken) hardware cursor
* Wed Nov 02 2022 Thomas Zimmermann - u_xf86-Accept-devices-with-the-kernels-ofdrm-driver.patch
* Add workaround to support ofdrm
* Wed Oct 19 2022 Stefan Dirsch - U_xkb-proof-GetCountedString-against-request-length-at.patch
* security update for CVE-2022-3550 (bsc#1204412)- U_xkb-fix-some-possible-memleaks-in-XkbGetKbdByName.patch
* security update for CVE-2022-3551 (bsc#1204416)
* Wed Jul 13 2022 Stefan Dirsch - rename u_sync-pci-ids-with-Mesa-22.0.0.patch to u_sync-pci-ids-with-Mesa.patch (currently synced with Mesa 22.1.3)
* Wed Jul 13 2022 Stefan Dirsch - u_sync-pci-ids-with-Mesa-22.0.0.patch
* synced with Mesa 22.1.3; just adding a PCI ID for vmware was needed
* Wed Jul 13 2022 Stefan Dirsch - Update to version 21.1
* This release fixes 2 recently reported security vulnerabilities in xkb, several regressions since 1.20.x and a number of miscellaneous bugs.- supersedes the following security patches
* U_boo1194181-001-xkb-swap-XkbSetDeviceInfo-and-XkbSetDeviceInfoCheck.patch
* U_boo1194179-001-xkb-rename-xkb_h-to-xkb-procs_h.patch
* U_boo1194179-002-xkb-add-request-length-validation-for-XkbSetGeometry.patch- supersedes U_Fix-build-with-gcc-12.patch
* Wed Jul 06 2022 Stefan Dirsch - U_boo1194181-001-xkb-swap-XkbSetDeviceInfo-and-XkbSetDeviceInfoCheck.patch
* Out-Of-Bounds Access in CheckSetDeviceIndicators() (CVE-2022-2320, ZDI-CAN-16070, bsc#1194181)- U_boo1194179-001-xkb-rename-xkb_h-to-xkb-procs_h.patch, U_boo1194179-002-xkb-add-request-length-validation-for-XkbSetGeometry.patch
* Out-Of-Bounds Access in _CheckSetSections() (CVE-2022-2319, ZDI-CAN-16062, bsc#1194179)
* Tue May 10 2022 Dirk Müller - add n_raise_default_clients.patch
* Wed Mar 30 2022 Marcus Meissner - disable -z now linking for now, as there are some missing symbol issues. (boo#1197994)
* Sun Mar 13 2022 Stefan Dirsch - u_sync-pci-ids-with-Mesa-22.0.0.patch
* sync pci ids with Mesa 22.0.0
* Tue Feb 22 2022 Bjørn Lie - U_Fix-build-with-gcc-12.patch
* render: Fix build with gcc 12 (glfdo#xorg/xserver!853).
* Sat Feb 12 2022 Stefan Dirsch - U_xephyr-Don-t-check-for-SeatId-anymore.patch
* fix mouse/keyboard focus in Xephyr (boo#1194658, github issue#1289)
* Thu Feb 10 2022 Dirk Müller - fix bashisms in pre_checkins.sh (bsc#1195391)
* Mon Jan 03 2022 Stefan Dirsch - u_xfree86-activate-GPU-screens-on-autobind.patch
* Part of the original patch by Dave Airlie has landed 078277e4d92f05a90c4715d61b89b9d9d38d68ea, this contains the remainder of what was in SUSE before Xorg 21.1. (github issue#1254, boo#1192751)
* Mon Jan 03 2022 Stefan Dirsch - Update to version 21.1.3
* This release fixes several regressions since 1.20.x and 21.1.1 + glx/dri: Filter out fbconfigs that don\'t have a supported pixmap format + xf86/logind: Fix compilation error when built without logind/platform bus + xf86/logind: fix missing call to vtenter if the platform device is not paused + Convert more funcs to use InternalEvent. + os: Try to discover the current seat with the XDG_SEAT var first
* Wed Dec 15 2021 Stefan Dirsch - Update to version 21.1.2
* This release fixes 4 recently reported security vulnerabilities and several regressions.
* In particular, the real physical dimensions are no longer reported by the X server anymore as it was deemed to be a too disruptive change. X server will continue to report DPI as 96.- supersedes U_hw-xfree86-Propagate-physical-dimensions-from-DRM-co.patch- supersedes U_rendercompositeglyphs.patch- supersedes U_xfixes-Fix-out-of-bounds-access-in-ProcXFixesCreateP.patch- supersedes U_Xext-Fix-out-of-bounds-access-in-SProcScreenSaverSus.patch- supersedes U_record-Fix-out-of-bounds-access-in-SwapCreateRegiste.patch
* Tue Dec 14 2021 Stefan Dirsch - U_xfixes-Fix-out-of-bounds-access-in-ProcXFixesCreateP.patch
* CVE-2021-4009/ZDI-CAN-14950 (bsc#1190487) The handler for the CreatePointerBarrier request of the XFixes extension does not properly validate the request length leading to out of bounds memory write.- U_Xext-Fix-out-of-bounds-access-in-SProcScreenSaverSus.patch
* CVE-2021-4010/ZDI-CAN-14951 (bsc#1190488) The handler for the Suspend request of the Screen Saver extension does not properly validate the request length leading to out of bounds memory write.- U_record-Fix-out-of-bounds-access-in-SwapCreateRegiste.patch
* CVE-2021-4011/ZDI-CAN-14952 (bsc#1190489) The handlers for the RecordCreateContext and RecordRegisterClients requests of the Record extension do not properly validate the request length leading to out of bounds memory write.
* Tue Dec 14 2021 Stefan Dirsch - U_rendercompositeglyphs.patch
* X.Org Server SProcRenderCompositeGlyphs Out-Of-Bounds Access Privilege Escalation Vulnerability [CVE-2021-4008, ZDI-CAN-14192] (boo#1193030)
* Tue Dec 14 2021 Thomas Zimmermann - u_Support-configuration-files-under-run-X11-xorg.conf..patch- u_Add-udev-scripts-for-configuration-of-platform-devic.patch- u_Add-udev-rule-for-HyperV-devices.patch
* Remove udev-based configuration- u_Revert-xf86-Accept-devices-with-the-simpledrm-driver.patch
* Restore simpledrm workaround- u_xf86-Accept-devices-with-the-hyperv_drm-driver.patch
* Add workaround to support hyperv_drm
* Fri Dec 03 2021 Thomas Zimmermann - u_pci-primary-Fix-up-primary-PCI-device-detection-for-the-platfrom-bus.patch
* Fix SEGFAULT when parsing bus IDs of NULL (boo#1193250)- u_Support-configuration-files-under-run-X11-xorg.conf..patch
* Support configuration files under /run. Required for generating configuration files via udev. (boo#1193250)- u_Add-udev-scripts-for-configuration-of-platform-devic.patch
* Generate configuration files for platform devices (boo#1193250)- u_Revert-xf86-Accept-devices-with-the-simpledrm-driver.patch
* Code has been obsoleted by udev patchset (boo#1193250)- u_Add-udev-rule-for-HyperV-devices.patch
* Same as for platform devices, but on HyperV (boo#1193250)
* Fri Nov 19 2021 Stefan Dirsch - enable build of Xorg on s390x (jira#SLE-18632)
* Thu Nov 11 2021 Stefan Dirsch - U_hw-xfree86-Propagate-physical-dimensions-from-DRM-co.patch
* reverse apply this one to go back to fixed 96 dpi (gitlab fdo/xserver issue#1241)- N_fix-dpi-values.diff
* back to version for xserver < 21.1.0
* Sun Nov 07 2021 Stefan Dirsch - Update to version 21.1.1
* s/__/AATT/ in inputtestdrv manpage
* Make xf86CompatOutput() return NULL when there are no privates
* Makefile.am: Add missing meson build files to release tarball
* Wed Oct 27 2021 Stefan Dirsch - Update to version 21.1.0
* The meson support is now fully mature. While autotools support will still be kept for this release series, it will be dropped afterwards.
* Glamor support for Xvfb.
* Variable refresh rate support in the modesetting driver.
* XInput 2.4 support which adds touchpad gestures.
* DMX DDX has been removed.
* X server now correctly reports display DPI in more cases. This may affect rendering of client applications that have their own workarounds for hi-DPI screens.
* A large number of small features and various bug fixes.- updated xorg-server-provides- supersedes patches
* U_Fix-segfault-on-probing-a-non-PCI-platform-device-on.patch
* U_dix-window-Use-ConfigureWindow-instead-of-MoveWindow.patch
* U_glamor_egl-Reject-OpenGL-2.1-early-on.patch
* u_render-Cast-color-masks-to-unsigned-long-before-shifting-them.patch- refreshed patches
* N_fix-dpi-values.diff
* N_zap_warning_xserver.diff
* u_modesetting-Fix-dirty-updates-for-sw-rotation.patch
* u_randr-Do-not-crash-if-slave-screen-does-not-have-pro.patch
* u_vesa-Add-VBEDPMSGetCapabilities-VBEDPMSGet.patch- disabled n_xserver-optimus-autoconfig-hack.patch, which I believe is superseded by: commit 078277e4d92f05a90c4715d61b89b9d9d38d68ea Author: Dave Airlie Date: Fri Aug 17 09:49:24 2012 +1000 xf86: autobind GPUs to the screen- added pkgconfig(libxcvt)- cvt binary moved to libxcvt0 package
* Fri Jul 30 2021 Stefan Dirsch - Update to version 1.20.13
* bugfix release- supersedes U_present-get_crtc-should-not-return-crtc-when-its-scr.patch, U_modesetting-unflip-not-possible-when-glamor-is-not-s.patch
* Thu Jul 22 2021 Stefan Dirsch - U_modesetting-unflip-not-possible-when-glamor-is-not-s.patch
* this should fixes crashes of xfce when running under qemu (boo#1188559)
* Thu Jul 22 2021 Dirk Müller - add U_present-get_crtc-should-not-return-crtc-when-its-scr.patch (bsc#1188559) https://gitlab.freedesktop.org/xorg/xserver/-/issues/1195
* Fri Jul 09 2021 Stefan Dirsch - Update to version 1.20.12
* bugfix release
* Thu Jun 17 2021 Bjørn Lie - Drop U_xwayland-Allow-passing-a-fd.patch: We build xwayland in a separate package now, so no need to keep this patch here.
* Wed Jun 16 2021 Ismail Dönmez - Fix typo in %post: xbb.conf -> xkb.conf
* Fri Jun 11 2021 Patrik Jakobsson - u_modesetting-Fix-dirty-updates-for-sw-rotation.patch
* Fixes broken rotation support for DRM drivers without hardware rotation support or direct vram access (bsc#1182955)
* Mon Apr 19 2021 Stefan Dirsch - disable build of Xwayland, which is now being built in separate xwayland package with more recent sources (boo#1182677)
* Tue Apr 13 2021 Stefan Dirsch - Update to version 1.20.11
* bugfix release- supersedes U_Fix-XChangeFeedbackControl-request-underflow.patch, U_xkb-Fix-heap-overflow-caused-by-optimized-away-min.patch
* Mon Apr 12 2021 Stefan Dirsch - U_Fix-XChangeFeedbackControl-request-underflow.patch
* Fix XChangeFeedbackControl() request underflow (CVE-2021-3472, ZDI-CAN-1259, bsc#1180128)
* Wed Mar 03 2021 Stefan Dirsch - reenabled LTO (boo#1133294)
* u_no-lto-for-tests.patch disables LTO in test/ subtree, since \"-Wl,-wrap\" is not supported by LTO
* added \"%global _lto_cflags %{?_lto_cflags} -ffat-lto-objects\"
 
ICM